Examples of org.springframework.session.web.http.CookieHttpSessionStrategy

• org.springframework.session.web.http.CookieHttpSessionStrategy
  A {@link HttpSessionStrategy} that uses a cookie to obtain the session from. Specifically, this implementation willallow specifying a cookie name using {@link CookieHttpSessionStrategy#setCookieName(String)}. The default is "SESSION". When a session is created, the HTTP response will have a cookie with the specified cookie name and the value of the session id. The cookie will be marked as a session cookie, use the context path for the path of the cookie, marked as HTTPOnly, and if {@link javax.servlet.http.HttpServletRequest#isSecure()} returns true, the cookie will be marked assecure. For example:

   HTTP/1.1 200 OK Set-Cookie: SESSION=f81d4fae-7dec-11d0-a765-00a0c91e6bf6; Path=/context-root; Secure; HttpOnly 

  The client should now include the session in each request by specifying the same cookie in their request. For example:

   GET /messages/ HTTP/1.1 Host: example.com Cookie: SESSION=f81d4fae-7dec-11d0-a765-00a0c91e6bf6 

  When the session is invalidated, the server will send an HTTP response that expires the cookie. For example:

   HTTP/1.1 200 OK Set-Cookie: SESSION=f81d4fae-7dec-11d0-a765-00a0c91e6bf6; Expires=Thur, 1 Jan 1970 00:00:00 GMT; Secure; HttpOnly 

  @since 1.0 @author Rob Winch

  public void setup() throws Exception {
    cookieName = "SESSION";
    session = new MapSession();
    request = new MockHttpServletRequest();
    response = new MockHttpServletResponse();
    strategy = new CookieHttpSessionStrategy();
  }